11 authorization line vty command, 11 authorization line vty command -73 – PLANET WGSW-52040 User Manual

Page 74

Advertising
background image

1-73

Usage Guide:

The authorization method for Console, VTY and Web login can be configured respectively. And authorization method

can be any one or combination of Local, RADIUS or TACACS. When login method is configuration in combination,

the preference goes from left to right. If the users have passed the authorization method, authorization method of

lower preferences will be ignored. To be mentioned, if the user receives corresponding protocol’s answer whether

refuse or incept, it will not attempt the next authorization method; it will attempt the next authorization method if it

receives nothing. And AAA function RADIUS server should be configured before the RADIUS configuration method

can be used. And TACACS server should be configured before the TACACS configuration method can be used.

The local users adopt username command permission while authorization command is not configured, the users

login the switch via RADIUS/TACACS method and works under common mode.

Example:

Configure the telnet authorization method to RADIUS.

Switch(config)#authorization line vty exec radius

1.2.11 authorization line vty command

Command:

authorization line vty command <1-15> {local | radius | tacacs} (none|)

no authorization line vty command <1-15>

Function:

Configure command authorization manner and authorization selection priority of login user with VTY (login with

Telnet and SSH). The no command recovers to be default manner.

Default:

The authorization manner is not configured as default.

Command Mode:

Global Mode.

Usage Guide:

Configure the authorization manner when VTY login user configures command, the manners include any

combination of Local, RADIUS and TACACS, the manner of none is just as the last manner. When using

combination authorization manners, the priority of the front authorization manner is the highest and the others are in

descending order; if the authorization with high priority passed, it is successful to configure command and the back

authorization manner will be ignored. Notice: as long as one authorization manner receives a clear response of the

corresponding agreement. Whether it is received or refused, the next authorization manner will not be attempted. If

Advertising
Popular Brands
Popular manuals